Help Request for Format 32-B not on barkweb site

C0d3M0nk · 2017-08-15 07:18:06

Hi Forum,

So I am trying to figure out what the FC code and format of roughly 10 boxes of cards that all state 1336-LGSMV/32-B on them. Nothing else which makes it fun.

Now I am using a 5427CK and I used HID Omnikey Workbench to get this info. I also used a basic prob to verify the hex data.

Does anyone have any info on this format? I am a bit rusty with my coding but I love to learn so please let me know what you need and you are welcome to feed my mind more information.

Also I tried using http://cardinfo.barkweb.com.au/index.php?location=3&sub=8&subsub=21 but I get the following.
- Notice: Undefined variable: card_formats in /home1/yvm9zhpd/cardinfo/Decode-HID-Omnikey 5427CK.php on line 39

- (Red) No known formats for bit length (24).

Card Number    ATR    UID/HEX
1025 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 08 03
1024 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 08 00
1023 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 FF
1022 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 FC
1021 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 FA
1020 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 F9
1019 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 F6
1018 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 F5
1017 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28    AB 8C 07 F3
1016 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 F0
1015 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 EE
1014 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28    AB 8C 07 ED
1013 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 EB
1012 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 E8
1011 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 E7
1010 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 E4
1009 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 AB 8C 07 E2

Thank you for your time,
Brad

ntk · 2017-08-15 09:12:07

1336-LGSMV/32-B
DuoProx II 125 kHz Proximity Card With Magnetic Stripe (PROG STD DuoProx Artwork Sequence Match # Vertical Slot)

https://www.identisource.net/pd-hid-1336-duoprox.cfm

Hi @admin "how can I paste a picture directly in a post/msg?"

to @OP, this format does not support 32bit as you said, only 26, 35, 37bit see link.

Have you tried to read with PM3? Unless it was the 37bit format I think PM3 should be able to deal with this card. Maybe Marshmellow could explain something

Have you done this: "CSN should be disabled and PACS leading byte should be enabled" llok like 1 byte is missing

Last edited by ntk (2017-08-15 09:43:31)

ntk · 2017-08-15 09:56:28

if your UID was 10AB8C0803 then the tool can decode to several types (Kastle, ATS wiegand, indala etc.) of a card number 1025

marshmellow · 2017-08-22 17:24:32

if you knew what the FC should be it would assist figuring out where the break is.

it looks like there may even be a third field (a fixed field or issue level field), unless your fc field is unusually large.

the AB8C0803 is the standard wiegand value of your tag in hexadecimal.
the first binary bit (1 in 1010 or A) is the left parity
i would guess the next 14 bits (01010111000110) are either a single facility code or split that to get the facility code and another field.
after that should come the 16 bits of your card number (00000100000000001 or 1025)
followed by the final parity bit: 1

C0d3M0nk · 2017-09-07 08:20:12

Hi Guys,

Thanks for getting back to me.

So here is what the boxes look like.

As you can see the Formats are lacking except like I said 32-B/32-A .. However on the box with 32-B and Facility code 5574 I use the site: http://cardinfo.barkweb.com.au/index.php?location=3&sub=9 after I convert the 5574 cards to hex and I don't get any formats to display like I do without the FC Code box, I figured the 32-B would at least trigger the same base format and then it would be easy sailing.

Here is 2 cards with the FC 5574

UID=2B8C9DDE – Card Number: 20207 FC 5574
UID=2B8C9DDD – Card Number: 20206 FC 5574

I put the 10 in front so I would have 102B8C9DDE and I got the Card number correct but not the FC code.

Now to move on to the reader:

here is a screen shot of my config http://192.168.63.99 when I am logged in, however either I am missing something or it doesn't like me. When I read a card after I change the settings, any app that tries to read the card there after freezes and I refresh the web page only to have everything reset as if the reader/config crashed. I am not sure what is going on but I assume that is a major problem in reading the cards.

Anyone have more insight on what I can try?

Again thank you for all of your help.
Brad

ntk · 2017-09-07 13:12:31

Just wonder your value FC=5574 is a HEX or DEC?

Also regarding "Enter data from HID Omnikey 5427CK keyboard wedge:
CSN should be disabled and PACS leading byte should be enabled. String should be similar to the following...
E.g. 063c0117c0"

I don't have Omnikey 5427CK , but how or are you sure you did fulfill the 2 conditions quoted in the instruction for CSN anf PACS?

Last edited by ntk (2017-09-07 13:26:25)

marshmellow · 2017-09-07 17:43:18

i cannot see your reader config to tell you where you went wrong.

there are many different 32 bit formats for HID type cards. so it is not surprising that the web tool doesn't have your specific format on their site.

but you will need to configure your format if you want it to type the FC and/or Cardnumber.

marshmellow · 2017-09-07 17:44:50

also 32-b and those boxes are not HID branded so these are imitation cards. That makes it more difficult to correctly identify the format.

C0d3M0nk · 2017-09-13 07:25:57

Nkt,

The value is in Hex.

To my knowledge I did, however like I stated the system seems to error out and return to the default values. I am on a winblows 10 machine trying to get this completed, possibly lower the OS or with the wisdom of this forum should I build a *nix box to get a better reading?

marshmellow,

As much as I would like to tell you that you are right with not being HID Branded, I assure you they are. Here is the boxes in their full glory. They were purchased a while ago and the documentation of the cards were in a letter, not on tags usually on the side and on top of the boxes like we're all familiar with.

Below is my images and I will put the direct link just in case there is an issue again.

Direct: http://personalitforyou.com/rfid/1336-2.jpg
HID 1336 Boxes with cards

Direct: http://personalitforyou.com/rfid/hiddesktop.png
HID Config for reader.

Direct: http://personalitforyou.com/rfid/stack.jpg
This is the Mifare cards, 35mm Disks and the 1336 stack I need to figure out the formats on these RFID items.

Yes, I have some fun times ahead.

Thanks again and look forward to your knowledge.

0xFFFF · 2017-09-14 01:55:55

I have never seen HID packaging like this before. It looks similar to very old packaging.
Is the N in corporation extending past the HID logo?
uc?export=download&id=0B5xJ6AQ8mWy1LW1YbFZkYlBaMzA

The data is there. I'm not sure where you're getting the UID from but this appears to be a simple hexadecimal representation of the card data.
e.g.
2B8C9DDE - 0 01010111000110 0100111011101111 0
5574 20207

I have not bothered to check the parity bits.
Guessing the format layout:

Bits:           1  2  3  4  5  6  7  8  9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32
Facility code:     1  2  3  4  5  6  7  8  9 10 11 12 13 14
Card Number:                                                 1  2  3  4  5  6  7  8  9 10 11 12 13 14 15 16
Odd Parity:     *  1  2  3  4  5  6  7  8  9 10 11 12 13 14 15 16
Odd Parity 2:                                                1  2  3  4  5  6  7  8  9 10 11 12 13 14 15 16  *

app_o1 · 2017-09-16 15:14:51

Unless those are from the 90's, those are most likely fake.
After this period, you will always have a label with an order/job/batch number stuck on the box. Nothing directly printed on the box.
Also, a genuine card would have the "Duo" and the "II" in blue color.

And on 0xFFFF's same note, see a badly imitated clam card:

C0d3M0nk · 2017-09-17 09:16:21

Hi Guys,

Actually they are HID Branded and not imitation. Not everything comes in a white pretty box. They are an older generation, which is why I am trying to find the format. They have been on the shelf for a while since the client boned out when they were originally ordered and it wasn't important at the time to find a new home, now after the collection of boxes has added up, I got the task to sort them, find their details if lacking, find a new home/client or sell them online to who ever needs them.

@App_01
Here is a little meeting between the cards. They are not all equal. Each type of card is different colors to differentiate between the types of cards by visual sight.

direct: http://www.personalitforyou.com/rfid/the-gang.jpg

@Everyone.

The same brown box for the 1336 H10301 in this picture above with the sticker is the exact same box for the 32-B just without the details. This is why I came here. HID started with Brown boxes before they went to white.

I am willing to ship 10 cards of the 32-B but to a very select few and looking for answers with the correct results.

Let me know if you are willing to take the time.

Thank you all for your interest and I look forward to the results by those willing to spend their time on this.
Brad

iceman · 2017-09-17 10:38:14

Go for it, I suggest you send a package to Marshmellow, 0xFFFF and me.

C0d3M0nk · 2017-09-17 17:14:17

Iceman,

You read my mind. I didn't want any Joe blow to ask. I got your email and will reply to you later today or tomorrow morning when I sit back down. I will wait for others to shoot me a message.

Would you mind a couple other card types I am trying to figure out added to the package?

Thanks,
Brad

iceman · 2017-09-17 17:45:48

Sure, go if you are going to send something then fill it up

C0d3M0nk · 2017-09-22 18:39:21

Hi Guys,

I messaged OxFFFF back a few days ago but I am assuming he is busy. If I don't hear back from him by Monday then I will just be sending you the package iceman.

If you can nudge him to respond please do so.

Thanks,
Brad

0xFFFF · 2017-09-23 02:54:58

Nudge received. Message sent.

C0d3M0nk · 2017-09-23 07:10:28

And a reply is waiting. Let me know if you need more data.

iceman, looks like oxFFFF might have an answer without me sending the cards but rather send him the HEX info. So I posted below what I sent to him. Let me know if this helps.

Cards: 1386-LGSMN/32-B
ATR: 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28 FC 5574
Card Number UID/HEX
20250 2B 8C 9E 35
20249 2B 8C 9E 33
20248 2B 8C 9E 30
20247 2B 8C 9E 2E
20246 2B 8C 9E 2D
20245 2B 8C 9E 2B
20244 2B 8C 9E 28
20243 2B 8C 9E 27
20242 2B 8C 9E 24
20241 2B 8C 9E 22
20240 2B 8C 9E 21
20239 2B 8C 9E 1E
20238 2B 8C 9E 1D

Cards: 1336-LGSMV/32-B
FC: Unknown
ATR: 3B 8F 80 01 80 4F 0C A0 00 00 03 06 40 00 00 00 00 00 00 28
Card Number UID/HEX
01025 AB 8C 08 03
01024 AB 8C 08 00
01023 AB 8C 07 FF
01022 AB 8C 07 FC
01021 AB 8C 07 FA
01020 AB 8C 07 F9
01019 AB 8C 07 F6
01018 AB 8C 07 F5
01017 AB 8C 07 F3
01016 AB 8C 07 F0
01015 AB 8C 07 EE
01014 AB 8C 07 ED
01013 AB 8C 07 EB

iceman · 2017-09-25 09:56:20

Since you have FC and CN on your previous post, getting the specific format will be possible.
0xFFFF did a prelim layout, which I think matches quite well

fc: 5574 1010111000110
cn: 20250 100111100011010

hex:
101011100011001001111000110101
1010111000110 100111100011010
|---fc------|p|-----csn-----|p

C0d3M0nk · 2017-10-01 01:27:29

So now that I had a moment and had other 32-Bit based cards, testing a lot of them and the work 0xFFFF did for me, I can officially say the /32-B tag is A10701 for HID

I put 5 different FC/100 and 4 200 card boxes to the test. Yeah I'm the guy that likes to be sure and the print out on the site never missed a beat.

Thank you guys again for your time and knowledge.

Brad

Last edited by C0d3M0nk (2017-10-01 01:27:57)

Proxmark3 community

Announcement

#1 2017-08-15 07:18:06

Help Request for Format 32-B not on barkweb site

#2 2017-08-15 09:12:07

Re: Help Request for Format 32-B not on barkweb site

#3 2017-08-15 09:56:28

Re: Help Request for Format 32-B not on barkweb site

#4 2017-08-22 17:24:32

Re: Help Request for Format 32-B not on barkweb site

#5 2017-09-07 08:20:12

Re: Help Request for Format 32-B not on barkweb site

#6 2017-09-07 13:12:31

Re: Help Request for Format 32-B not on barkweb site

#7 2017-09-07 17:43:18

Re: Help Request for Format 32-B not on barkweb site

#8 2017-09-07 17:44:50

Re: Help Request for Format 32-B not on barkweb site

#9 2017-09-13 07:25:57

Re: Help Request for Format 32-B not on barkweb site

#10 2017-09-14 01:55:55

Re: Help Request for Format 32-B not on barkweb site

#11 2017-09-16 15:14:51

Re: Help Request for Format 32-B not on barkweb site

#12 2017-09-17 09:16:21

Re: Help Request for Format 32-B not on barkweb site

#13 2017-09-17 10:38:14

Re: Help Request for Format 32-B not on barkweb site

#14 2017-09-17 17:14:17

Re: Help Request for Format 32-B not on barkweb site

#15 2017-09-17 17:45:48

Re: Help Request for Format 32-B not on barkweb site

#16 2017-09-22 18:39:21

Re: Help Request for Format 32-B not on barkweb site

#17 2017-09-23 02:54:58

Re: Help Request for Format 32-B not on barkweb site

#18 2017-09-23 07:10:28

Re: Help Request for Format 32-B not on barkweb site

#19 2017-09-25 09:56:20

Re: Help Request for Format 32-B not on barkweb site

#20 2017-10-01 01:27:29

Re: Help Request for Format 32-B not on barkweb site

Board footer